Akamai releases global DDoS attack report

AkamaiWednesday 23 July 14

Akamai Technologies, Inc., the leading provider of cloud services for delivering, optimising and securing online content and business applications, today announced availability of the Prolexic Q2 2014 Global DDoS Attack Report. Prolexic Technologies, now part of Akamai, is a recognised leader in Distributed Denial of Service (DDoS) protection services, and has produced the quarterly Global DDoS Attack Report since 2011. The report, which provides analysis and insight into the global DDoS threat landscape, can be downloaded at www.prolexic.com/attackreports.
&ldquo…

Akamai Technologies, Inc., the leading provider of cloud services for delivering, optimising and securing online content and business applications, today announced availability of the Prolexic Q2 2014 Global DDoS Attack Report. Prolexic Technologies, now part of Akamai, is a recognised leader in Distributed Denial of Service (DDoS) protection services, and has produced the quarterly Global DDoS Attack Report since 2011. The report, which provides analysis and insight into the global DDoS threat landscape, can be downloaded at www.prolexic.com/attackreports.

“DDoS attacks have continued in high numbers and with high average and peak bandwidths. They can take out an entire data center by overwhelming network bandwidth,” said Stuart Scholly, senior vice president and general manager of Security at Akamai Technologies. “Behind these powerful attacks are changing tactics to build, deploy and conceal powerful botnets. Server-side botnets are preying on web vulnerabilities and reflection and amplification tactics are allowing attackers to do more with less.”

When building server-side botnets, attackers have been targeting Platform-as-a-Service (PaaS) and Software-as-a-Service (SaaS) vendors with server instances running software with known vulnerabilities, such as versions of the Linux, Apache, MySQL, PHP (LAMP) stack and Microsoft Windows server operating systems. They have also targeted vulnerable versions of common web Content Management Systems (CMS) such as WordPress and Joomla or their plugins.

While the use of server-based botnets has increased, the itsoknoproblembro (Brobot) botnet, also based on server infection, has remained a threat. Attacks in the second quarter of 2014 provided indications that the botnet is still in place from its earlier use in the Operation Ababil attacks against financial institutions in 2011-2013. Once thought to have been cleaned up, it appears the botnet has been surreptitiously maintained.

Reflection and amplification attacks were more popular in the second quarter of 2014 as compared to the same period in 2013, representing more than 15 percent of all infrastructure attacks. These attacks take advantage of the functionality of common Internet protocols and misconfigured servers. While the use of NTP reflection attacks was down significantly in the second quarter of 2014, likely due to community cleanup work, SNMP reflector attacks surged during the quarter, filling the void.

Attacks involving server-side botnets have only been observed by Akamai in the most sophisticated and carefully orchestrated DDoS campaigns. Their high-volume infrastructure attacks have had signatures that appear to be specially crafted to avoid detection by DDoS mitigation technology. Because of the effectiveness of these attacks, and the widespread availability of vulnerable cloud-based software, they are likely to continue and may be monetised in the underground DDoS marketplace. They potentially pose a significant danger to businesses, governments and other organizations.

These DDoS trends and more are discussed in detail in Prolexic’s Q2 2014 Global DDoS Attack Report. A complimentary copy is available as a free PDF download at www.prolexic.com/attackreports.

Akamai and Prolexic DDoS attack reports to be merged

Akamai completed its acquisition of Prolexic in February 2014. Prolexic’s Global DDoS Attack Report and Akamai’s State of the Internet Report both cover DDoS attacks and related trends and statistics. In the coming quarters, we expect to consolidate these publications with the goal of publishing a combined report that delivers an unparalleled level of insight into the Internet threat landscape. Follow @akamai_soti on Twitter for more information.

We are having trouble showing you adverts on this page,
which may be a result of ad blocker software being installed on your device.
To view the article please disable any ad blocking software

Since you're here...

...the Telecoms industry is characterised by constant change and evolution. That's why it's crucial for telecoms professionals to keep up-to-date with what is happening. Join 35,000+ of your peers and sign up to our free newsletter service today, to be in the know about what is going on. PLUS, as a member you can submit your own press releases!

Quick Links

Social Links

Total Telecom meets the information and research needs of the Global Communications industry, from breaking news to expert analysis. It is the leading communications link between end users and the vendors, carriers and resellers of telecommunications technology and services.